Start Auto Remediation fixes automatically when a new vulnerability is found
Problem to solve
Auto Remediate solves security vulnerabilities automatically. But it still needs to be fired manually from a security report or dashboard. We should constantly monitor new vulnerabilities that may appear in the codebase and start Auto Remediate automatically on those, so it will be fully automated.
Further details
This may require big changes in the infrastructure as we need to do this constantly even if there are no interactions (no new commits, no feedback from reports, etc).
Proposal
Set up a background job to be notified about new vulnerabilities, and start Auto Remediate as soon as there is a new match.
What does success look like, and how can we measure that?
Number of projects with Auto Remediate enabled as a background task.
Links / references
https://gitlab.com/gitlab-org/gitlab-ee/issues/3710
This page may contain information related to upcoming products, features and functionality. It is important to note that the information presented is for informational purposes only, so please do not rely on the information for purchasing or planning purposes. Just like with all projects, the items mentioned on the page are subject to change or delay, and the development, release, and timing of any products, features, or functionality remain at the sole discretion of GitLab Inc.